Deleting A Security Association; Security Association Notes - NETGEAR FR314 Reference Manual

Cable/dsl firewall and vpn routers

Hide thumbs Also See for FR314:

Installation manual (2 pages)

Installation manual (4 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

Table of Contents

Reference Guide for the Model FR314, FR318 and FV318 Cable/DSL Firewall and VPN Routers

The Shared Secret must be between 8 and 128 characters. For greater security, enter a

combination of letters, numbers and symbols, such as "Aa8^Hjj@e$FF#." Letters are case

sensitive.

Destination Network Address: Enter the network IP address and subnet mask for the remote

network to which your VPN will connect.

The two endpoint networks must have different LAN IP address ranges. For example, if both

ends are using the Netgear default address range of 192.168.0.x, the connection will not work.

Change one router's LAN IP Address and DHCP range to a different range such as

192.168.1.x.

If the remote endpoint is a VPN PC client, its destination address must be a single IP address,

with a subnet mask of 255.255.255.255. If its address is dynamically-assigned (or assigned by

DHCP), Netgear recommends that you enter a "virtual fixed" IP address in the range of

172.16.0.x, with a subnet mask of 255.255.255.255, and enter this address in the configuration

of the VPN client software. If you are creating multiple VPN client SAs (FV318 only), select a

different "virtual fixed" IP address for each SA.

Deleting a Security Association

To delete a security association:

Go to the VPN Configure window.

In the Security Association drop-down box, select the security association to be deleted.

Click on the Delete This SA button.

Click on the Update button.

Security Association Notes

•

Internet Key Exchange (IKE) with pre-shared secrets will be used.

•

VPN Client connnections will use HMAC MD5 auhentication

•

SA Life Time is 8 Hours.

A finite SA Life Time increases security by forcing the two VPN endpoints to update the

encryption and authentication keys. However, every time the VPN tunnel renegotiates, users

accessing remote resources are disconnected.

•

For increased reliability, Keep Alive will always be enabled for router to router SA's (Peer

Netgear Router)

Virtual Private Networking

10-7

Table of Contents

Troubleshooting

This manual is also suitable for:

Fr318 Fv318

Deleting A Security Association; Security Association Notes - NETGEAR FR314 Reference Manual

Deleting a Security Association

Security Association Notes

Troubleshooting

Related Manuals for NETGEAR FR314

Related Content for NETGEAR FR314

This manual is also suitable for:

Table of Contents